Close
  • Latest News
  • Cybersecurity
  • Big Data and Analytics
  • Cloud
  • Mobile
  • Networking
  • Storage
  • Applications
  • IT Management
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Menu
Search
  • Latest News
  • Cybersecurity
  • Big Data and Analytics
  • Cloud
  • Mobile
  • Networking
  • Storage
  • Applications
  • IT Management
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity
    • Mobile
    • Networking

    Defenses Should Fit Wired, Wireless Nets

    By
    Andrew Garcia
    -
    May 31, 2004
    Share
    Facebook
    Twitter
    Linkedin

      Laptops and mobile devices that access the corporate network behind the perimeter firewall have IT staffs scrambling to combat malicious threats introduced in a way that evades perimeter security measures. As the network perimeter dissolves, IT administrators must find solutions that provide granular access controls and capable zero-day worm defenses that are appropriate and manageable for wired and wireless clients.

      The number of products that attempt to address this problem is increasing dramatically, bringing access controls, inline application filtering and host quarantine capabilities to the forefront. However, each product seems to plant a stake in the ground, focusing on either wired or wireless deployments. When evaluating any solution, administrators must stay mindful of their needs for both.

      In the past few months, eWEEK Labs has evaluated new solutions from emerging companies such as CyberGatekeeper LAN from InfoExpress Inc. and Identity Platform from Trusted Networks Technologies Inc. These products segment the wired internal network with a combination of gateway hardware and client software that provides worm defense or user-specific access controls to critical resources. In addition, established companies such as Cisco Systems Inc., with its Self-Defending Network initiative, are targeting this space.

      /zimages/3/28571.gifClick here to read eWEEK Labs review of Trusted Networks Identity Series ID100.

      There are advantages and disadvantages to the use of client applications to enable host security. Client-side software provides a much deeper scan of the client host for vulnerabilities, missing applications or malware and can enable unique identification properties or encryption capabilities in network traffic down to the packet level.

      However, the deployment of client applications—not only to laptops but also to every users desktop computer—is a daunting administrative task. Add mobile devices to the mix (assuming there is mobile-compatible software at all), and the administrative burden is nigh insurmountable.

      There are a number of clientless solutions on the market today, several of which are infrastructure products positioned as wireless solutions. For a few years, security gateway vendors such as BlueSocket Inc., ReefEdge Inc. and Vernier Networks Inc. have been delivering products that provide authentication services, time- and user-specific access to back-end resources, and IP Security encryption endpoints within the internal network.

      During the past year, both Bluesocket and Vernier Networks also layered on virus and worm defenses, based on threat-specific filters or on rate-based detection capabilities. Although these features need to be enhanced with stronger signature-based recognition and detection engines, the products potential for deployment in conjunction with wired clients is compelling.

      Security gateway vendor Perfigo Inc. recognized the burgeoning need to protect wired and wireless clients and shifted its development and marketing strategies appropriately. Where Perfigos early-generation SecureSmart products focused on securing and managing wireless infrastructure, this years addition of the companys CleanMachines vulnerability assessment and quarantine capabilities is vital and appropriate for wired clients as well.

      At your service

      The latest crop of wireless gateway appliances can provide these services to protect networks from attack

      • Access to network resources based on user or group affiliation, time of day, location
      • Stateful inspection firewalling
      • Worm defenses
      • Vulnerability assessment
      • IPSec encryption termination

      The Perfigo solution can work both ways, providing the option to use clientless, network-based vulnerability scans or deeper client-based registry scans via its SmartEnforcer technology. Perfigos change of emphasis is a welcome development that properly reflects the needs of enterprise customers to mitigate attacks no matter what the connection. Wed like to see the other security gateway vendors follow suit.

      When we spoke to BlueSocket and ReefEdge representatives about their offerings efficacy for wired and wireless products, both parties said some customers use the solutions for computers with wired network access—college dormitories and corporate meeting rooms are common scenarios. However, both companies have for now chosen to stay on message, promoting the increased security and mobility their products bring to wireless networks.

      Nonetheless, the wireless gateway vendors have a proven track record. Their product lines reflect the lessons learned from actual deployments, with improved access controls, security scans and throughput capabilities—all features that are necessary when considering the wired network as well.

      Wireless administrators have likely investigated these products to protect their WLANs (wireless LANs), and network IT staffs may find that these solutions fill the bill to protect wired networks as well.

      Technical Analyst Andrew Garcia can be reached at [email protected]

      /zimages/3/28571.gifCheck out eWEEK.coms Security Center at http://security.eweek.com for the latest security news, reviews and analysis.

      /zimages/3/77042.gif

      Be sure to add our eWEEK.com developer and Web services news feed to your RSS newsreader or My Yahoo page

      Avatar
      Andrew Garcia
      Andrew cut his teeth as a systems administrator at the University of California, learning the ins and outs of server migration, Windows desktop management, Unix and Novell administration. After a tour of duty as a team leader for PC Magazine's Labs, Andrew turned to system integration - providing network, server, and desktop consulting services for small businesses throughout the Bay Area. With eWEEK Labs since 2003, Andrew concentrates on wireless networking technologies while moonlighting with Microsoft Windows, mobile devices and management, and unified communications. He produces product reviews, technology analysis and opinion pieces for eWEEK.com, eWEEK magazine, and the Labs' Release Notes blog. Follow Andrew on Twitter at andrewrgarcia, or reach him by email at [email protected]

      MOST POPULAR ARTICLES

      Android

      Samsung Galaxy XCover Pro: Durability for Tough...

      Chris Preimesberger - December 5, 2020 0
      Have you ever dropped your phone, winced and felt the pain as it hit the sidewalk? Either the screen splintered like a windshield being...
      Read more
      Cloud

      Why Data Security Will Face Even Harsher...

      Chris Preimesberger - December 1, 2020 0
      Who would know more about details of the hacking process than an actual former career hacker? And who wants to understand all they can...
      Read more
      Cybersecurity

      How Veritas Is Shining a Light Into...

      eWEEK EDITORS - September 25, 2020 0
      Protecting data has always been one of the most important tasks in all of IT, yet as more companies become data companies at the...
      Read more
      Big Data and Analytics

      How NVIDIA A100 Station Brings Data Center...

      Zeus Kerravala - November 18, 2020 0
      There’s little debate that graphics processor unit manufacturer NVIDIA is the de facto standard when it comes to providing silicon to power machine learning...
      Read more
      Apple

      Why iPhone 12 Pro Makes Sense for...

      Wayne Rash - November 26, 2020 0
      If you’ve been watching the Apple commercials for the past three weeks, you already know what the company thinks will happen if you buy...
      Read more
      eWeek


      Contact Us | About | Sitemap

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Property of TechnologyAdvice.
      Terms of Service | Privacy Notice | Advertise | California - Do Not Sell My Information

      © 2021 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×